Security Vulnerabilities - CVEs Published In February 2023
Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter on the registration page.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-02-27
Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the Description parameter under the Create ticket function.
CVSS Score
8.8
EPSS Score
0.003
Published
2023-02-27
Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the oldpass parameter under the Change Password function.
CVSS Score
8.8
EPSS Score
0.003
Published
2023-02-27
Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter under the Request a Quote function.
CVSS Score
8.8
EPSS Score
0.003
Published
2023-02-27
Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the subject parameter under the Create Ticket function.
CVSS Score
8.8
EPSS Score
0.003
Published
2023-02-27
Tenda Router W30E V1.0.1.25(633) is vulnerable to Buffer Overflow in function fromRouteStatic via parameters entrys and mitInterface.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-02-27
Tenda AC500 V2.0.1.9(1307) is vulnerable to Buffer Overflow in function fromRouteStatic via parameters entrys and mitInterface.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-02-27
Tenda AC500 V2.0.1.9(1307) is vulnerable to Buffer Overflow in function fromAddressNat via parameters entrys and mitInterface.
CVSS Score
9.8
EPSS Score
0.688
Published
2023-02-27
Tenda AC500 V2.0.1.9(1307) is vulnerable to Buffer Overflow in function formOneSsidCfgSet via parameter ssid.
CVSS Score
7.5
EPSS Score
0.002
Published
2023-02-27
Sme.UP TOKYO V6R1M220406 was discovered to contain an arbitrary file download vulnerabilty via the component /ResourceService.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-02-27